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Communication privacy: Secure off-the-record messag ing 
Mario Di Ralmondo, Rosario Gennaro, Hugo Krawczyk 

November 2005 Proceedings of the 2005 ACM workshop on Privacy in the electronic society 
'05 

Publisher: ACM Press 

Full text available: ^ pdf(181.59 KB) Additional Information: full citation , abstract , references , index terms 

At the 2004 Workshop on Privacy in the Electronic Society (WPES), Borisov, Goldberg and Brew 
presented "Off the Record Messaging" (OTR), a protocol designed to add end-to-end security ar 
privacy to Instant Messaging protocols. An open-source implementation of OTR is available and 
achieved considerable success. In this paper we present a security analysis of OTR showing that 
the overall concept of the system is valid and attractive, the protocol suffers from security 
shortcomings du ... 



Keywords: authentication, deniability, instant messaging, perfect forward secrecy 



2 Privacy/anonymity: Receiver anonymity via incomparable public keys 
^ Brent R. Waters, Edward W. Felten, Amit Sahai 

October 2003 Proceedings of the 10th ACM conference on Computer and communications 
security CCS '03 

Publisher: ACM Press 

Full text available: ^ pdf(230.49 KB) Additional Information: full citation , abstract , references , citings , index term 

We describe a new method for protecting the anonymity of message receivers in an untrusted 
network. Surprisingly, existing methods fail to provide the required level of anonymity for receix 
(although those methods do protect sender anonymity). Our method relies on the use of multic 
along with a novel cryptographic primitive that we call an Incomparable Public Key cryptosyster 
which allows a receiver to efficiently create many anonymous "identities" for itself without divul- 
that these ... 

Keywords: PGP, anonymity, privacy, public key cryptography 



3 Trust recommendations, evidence, and other collaboration Know-how (TRECK): Strong 
pseudonymous communication for peer-to-peer reputation systems 
Michael Kinateder, Ralf Terdic, Kurt Rothermel 

March 2005 Proceedings of the 2005 ACM symposium on Applied computing SAC '05 
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Publisher: ACM Press 

Full text available: ^ pdf(231 .59 KB) Additional Information: full citation , abstract , references , index ternns . review 

In this paper we present a novel approach to enable untraceable communication between 
pseudonyms. Our work provides strong sender and recipient anonymity by eliminating the need 
know of each other's address. We use a variation of Chaum mixes to achieve unlinkability betwe 
sender and recipient and introduce a concept called extended destination routing (EDR) which p 
routing headers constructed in multiple layers of encryption and published in a distributed hasti 
(DH ... 

Keywords: data protection, distributed reputation systems, extended destination routing, mixe 
pseudonymous communication 



^ Secure communications between bandwidth brokers 

Bu-Sung Lee, Wing-Keong Woo, Chai-Klat Yeo, Teck-Meng Lim, Bee-Hwa Lim, Yuxiong He, Jie Son^ 
January 2004 ACM SIGOPS Operating Systems Review, volume 38 issue i 
Publisher: ACM Press 

Full text available: ^ pdf(922.33 KB) Additional Information: full citation , abstract , references 

In the Differentiated Services (DiffServ) architecture, each domain has a Bandwidth Broker to p 
the resources management, primarily bandwidth reservation. In a multi-domain environment, S 
Inter-domain Bandwidth Broker Signaling (SIBBS) protocol is proposed for the inter-domain 
communication protocol proposed for bandwidth broker communication. Since the information 
exchanged between BBs are sensitive in sense of Service Level Agreement (SLA), the communii 
between the inter-domai ... 

Keywords: Bandwidth Broker, Public Key Infrastructure, Simple Inter-domain Bandwidth Broke 
Signaling 



5 New basic technologies for DIM: Pseudonym management using mediated identity-based 
^ cryptography 

^ Thlbault Candebat, Cameron Ross Dunne, David T. Gray 

November 2005 Proceedings of the 2005 workshop on Digital identity management DIM '0! 
Publisher: ACM Press 

Full text available: Q pdf(293.16 KB) Additional Information: full citation , abstract , references , index terms 

Mobile Location -Based Services (LBS) have raised privacy concerns amongst mobile phone user 
may need to supply their identity and location information to untrustworthy third parties in orde 
access these applications. Widespread acceptance of such services may therefore depend on ho 
privacy sensitive information will be handled in order to restore users' confidence in what could 
become the "killer app" of 3G networks. In this paper, we present a proxy-based public key 
infrastructure tha ... 

Keywords: SEM architecture. Identity-based encryption, location-based services, pseudonymit^ 




6 Oblivious signature-based envelo pe 
Ninghui Li, Wenliang Du, Dan Boneh 

July 2003 Proceedings of the twenty-second annual symposium on Principles of distribui 
computing PODC '03 

Publisher: ACM Press 

Full text available: Q pdf(874.99 KB) Additional Information: fuH citation , abstract , references , citings , index term 

Exchange of digitally signed certificates is often used to establish mutual trust between strangei 
wish to share resources or to conduct business transactions. Automated Trust Negotiation (ATN 
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approach to regulate the flow of sensitive Information during such an exchange. Previous work i 
are based on access control techniques, and cannot handle cyclic policy interdependency satisfa 
We show that the problem can be modelled as a 2-party secure function evaluation (SFE) pr ... 

Wireless sensor networks: An efficient broadcast authentication scheme in wireless sensoi 
networks 

Shang-Ming Chang, Shiuhpyng Shieh, Warren W. Lin, Chih-Ming Hsieh 
March 2006 Proceedings of the 2006 ACM Symposium on Information, computer and 
communications security ASIACCS '06 

Publisher: ACM Press 

Full text available: ^pdf(2.17MB^ Additional Information: full citation , abstract , references 

A broadcast authentication mechanism Is important in wireless sensor networks, assuring receiv 
a packet's validity. To provide authentication, some researchers utilize one way key chains and 
delayed disclosure of keys; however, such an approach requires time synchronization and delay 
authentication. Another technique uses one-time signature schemes. Unfortunately, such schenr 
suffer from large key sizes and a limited number of uses per key. To cope with these problems, 
propose an eff ... 

Keywords: authentication, broadcast, key renewal, one time signature, wireless sensor networ 



^ Cry ptography: Direct chosen ciphertext security from identity-based techniques 
Xavier Boyen, Qixiang Mei, Brent Waters 

November 2005 Proceedings of the 12th ACM conference on Computer and communications 
security CCS '05 

Publisher: ACM Press 

Full text available: ^ pdf(305.35 KB) Additional Information: full citation , abstract , references , citings , index temi 

We describe a new encryption technique that is secure in the standard model against chosen clf 
attacks. We base our method on two very efficient Identity-Based Encryption (IBE) schemes wit 
random oracles due to Boneh and Boyen, and Waters. Unlike previous CCA2-secure cryptosyster 
use IBE as a black box, our approach is very simple and compact. It makes direct use of the 
underlying IBE structure, and requires no cryptographic primitive other than the IBE scheme its 
This convey ... 

Keywords: chosen ciphertext security, identity-based encryption 




9 The design and implementation of a private nnessaae service for mobile computers 
David A. Cooper, Kenneth P. Birman 
August 1995 Wireless Networks, volume i issue 3 
Publisher: Kluwer Academic Publishers 

Full text available: ^Ddf(1.35 MB) Additional Information: full citation , abstract , references 

Even as wireless networks create the potential for access to information from mobile platforms, 
pose a problem for privacy. In order to retrieve messages, users must periodically poll the netw 
The information that the user must give to the network could potentially be used to track that u 
However, the movements of the user can also be used to hide the user's location if the protocol 
sending and retrieving messages are carefully designed. We have developed a replicated memo 

Anonymizing networks: Reusable anonymous return channels 
^ Philippe Golle, Markus Jakobsson 

>^ October 2003 Proceedings of the 2003 ACM workshop on Privacy in the electronic society \ 
03 

Publisher: ACM Press 
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Full text available: ^ pdf(1 60.85 KB) Additional Information: full citation , abstract , references , citings, Index term 

Mix networks are used to deliver messages anonymously to recipients, but do not straightforwa 
allow the recipient of an anonymous message to reply to Its sender. Yet the ability to reply one 
more times, and to further reply to replies, is essential to a complete anonymous conversation, 
propose a protocol that allows a sender of anonymous messages to establish a reusable anonyn 
return channel. This channel enables any recipient of one of these anonymous messages to sen- 
0 ... 

Keywords: anonymity, mix networks, privacy, return address 



11 Routing: ANODR: anonymous on demand routing with untraceable routes for mobile ad-hc 
networks 

Jiejun Kong, Xiaoyan Hong 

June 2003 Proceedings of the 4th ACM international symposium on Mobile ad hoc networ 
computing MobiHoc '03 

Publisher: ACM Press 

Full text available: ^ pdf(236.79 KB) Additional Information: full citation , abstract , references , citings , index term 

In hostile environments, the enemy can launch traffic analysis against interceptable routing 
information embedded in routing messages and data packets. Allowing adversaries to trace neti 
routes and infer the motion pattern of nodes at the end of those routes may pose a serious thre 
covert operations. We propose ANODR, an anonymous on-demand routing protocol for mobile a 
networks deployed in hostile environments. We address two closely related problems: For route 
anonymity, AN ... 

Keywords: anonymity, broadcast, mobile ad-hoc network, on-demand routing, pseudonymity, 
trapdoor, untraceability 




12 Xor-trees for efficient anonymous multicast and reception 

ShIomI Dolev, Rafail Ostrobsky 
^ May 2000 ACM Transactions on Information and System Security (TISSEC), volume 3 issue 2 

Publisher: ACM Press 

Full text available: ^ pdf(296.45 KB) Additional Information: full citation , abstract , references , citings , index term 

We examine the problem of efficient anonymous multicast and reception in general communicat 
networks. We present algorithms that achieve anonymous communication, are protected agains 
analysis, and require 0(1) amortized communication complexity on each link and low computati 
comlexity. The algorithms support sender anonymity, receiver(s) anonymity, or sender-receiver 
anonymity. 

Keywords: anonymous communication, anonymous multicast 



13 Identification control: Public key distribution through "crvptolDs" 
Trevor Perrin 

August 2003 Proceedings of the 2003 workshop on New security paradigms NSPW '03 

Publisher: ACM Press 

Full text available: ^ pdf(1.51 MB) Additional Information: full citation , abstract , references , citings , index term 

In this paper, we argue that person-to-person key distribution is best accomplished with a key-' 
approach, instead of PKI: users should distribute public key fingerprints in the same way they 
distribute phone numbers, postal addresses, and the like. To make this work, fingerprints need 
small, so users can handle them easily; multipurpose, so only a single fingerprint is needed for 
user; and long-lived, so fingerprints don't have to be frequently redistribute ... 
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Keywords: cryptoIDs, fingerprints, key distribution, key management, public key Infrastructun 

14 Introduction of the asymmetric cryptography in GSM, GPRS. UMTS, and its public key 
infrastructure integration 

Constantlnos F. Grecas, Sotirios I. Maniatis, lakovos S. Venieris 
April 2003 Mobile Networks and Applications, Volume 8 issue 2 
Publisher: Kluwer Academic Publishers 

Full text available: ^ pdfd 07.24 KB) Additional Information: full citation , abstract , references , index terms 

The logic ruling the user and network authentication as well as the data ciphering in the GSM 
architecture is characterized, regarding the transferring of the parameters employed in these 
processes, by transactions between three nodes of the system, that is the MS, actually the SIM, 
visited MSC/VLR, and the AuC, which is attached to the HLR in most cases. The GPRS and the U 
architecture carry the heritage of the GSM's philosophy regarding the user/network authenticati 
the data ciphe ... 

Keywords: PKIs, PLMNs, asymmetric cryptography 



15 Fine-grained control of security capabilities 
^ Dan Boneh, Xuhua Ding, GeneTsudik 

February 2004 ACM Transactions on Internet Technology (TOIT), volume 4 issue i 
Publisher: ACM Press 

Full text available: ^pdf(128>09 KB) Additional Information: full citation , abstract , references , citings , index term 

We present a new approach for fine-grained control over users' security privileges (fast revocati 
credentials) centered around the concept of an on-line semi-trusted mediator (SEM). The use ol 
in conjunction with a simple threshold variant of the RSA cryptosystem (mediated RSA) offers a 
number of practical advantages over current revocation techniques. The benefits include simplif 
validation of digital signatures, efficient certificate revocation for legacy systems and fast revoc< 

Keywords: Certificate Revocation, Digital Signatures, Public Key Infrastructure 

16 Cr y ptogra phic tools: ID-based encryption for complex hierarchies with a p plications to forwc 
^ security and broadcast encr y ption 

^ Danfeng Yao, Nelly Fazio, Yevgeniy Dodis, Anna Lysyanskaya 

October 2004 Proceedings of the 11th ACM conference on Computer and communications 
security CCS '04 

Publisher: ACM Press 

Full text available: ^ pdf(22Q.0Q KB) Additional Information: full citation , abstract , references , index terms 

A forward-secure encryption scheme protects secret keys from exposure by evolving the keys v\ 
time. Forward security has several unique requirements in hierarchical identity-based encryptioi 
(HIBE) scheme: (1) users join dynamically; (2) encryption is joining-time-oblivious; (3) users e 
secret keys autonomously. 

We present a scalable forward-secure HIBE (fs-HIBE) scheme satisfying the above properties. V 
show how our fs-HIBE scheme can be used to construct a forward -secure ... 

Keywords: ID-Based encryption, broadcast encryption, forward security 
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Authentication in distributed systems: theorv and practice 
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Butler Lampson, Martm Abadi, Michael Burrows, Edward Wobber 

November 1992 ACM Transactions on Computer Systems (TOCS), volume lo issue 4 

Publisher: ACM Press 

Full text available: 'g) pdf(3.37 MB) Additional Information: full citation , abstract , references , citings , index term 

We describe a theory of authentication and a system that implements it. Our theory is based on 
notion of principal and a ''speaks for" relation between principals. A simple principal either has e 
or is a communication channel; a compound principal can express an adopted role or delegated 
authority. The theory shows how to reason about a principal's authority by deducing the other 
principals that it can speak for; authenticating a channel is one important application. We ... 

Keywords: certification authority, delegation, group, interprocess communication, key distribui 
loading programs, path name, principal, role, secure channel, speaks for, trusted computing bai 



User interface requirements for authentication of communication 
Audun J0sang, Mary Anne Patton 

February 2003 Proceedings of the Fourth Australasian user interface conference on User 
interfaces 2003 - Volume 18 AUIC '03 

Publisher: Australian Computer Society, Inc. 

Full text available: pdf(375.46 KB) Additional Information: full citation , abstract , references , index terms 

Authentication is a security service that consists of verifying that someone's identity is as claims 
There are a number of challenges to presenting information from the authentication process to ■ 
user in a way that is meaningful and ensures security. We show examples where authentication 
requirements are not met, due to user behaviour and properties of existing user interfaces, and 
suggest some solutions to these problems. 

Keywords: authentication, non-repudiation, security, usability, user interface 



^ A pplied cryptography II: Deniable authentication and key exchange 
^ Mario Dl Raimondo, Rosario Gennaro, Hugo Krawczyk 

y October 2006 Proceedings of the 13th ACM conference on Computer and communications 
security CCS '06 
Publisher: ACM Press 

Full text available: ^ pdf(266.22 KB^ Additional Information: full citation , abstract , references , index terms 

We extend the definitional work of Dwork,Naor and Sahai from deniable authentication to denia 
key-exchange protocols. We then use these definitions to prove the deniability features of SKEN 
SIGMA, two natural and efficient protocols which serye as basis for the Internet Key Exchange ( 
protocol. SKEME is an encryption-based protocol for which we prove full deniability based on the 
plaintext awareness of the underlying encryption scheme. Interestingly SKEME's deniability is pi 
the ... 



Keywords: authentication, deniability, key exchange 



2^ Some facets of complexity theory and cryptography: A five-lecture tutorial 
Jorg Rothe 

^ December 2002 aCI^ Computing Surveys (CSUR), Volume 34 issue 4 
Publisher: ACM Press 

Full text available: Q pdf(2.78 MB^ Additional Information: full citation , abstract , references , citin gs, index term 

In this tutorial, selected topics of cryptology and of computational complexity theory are presen 
We give a brief oyeryiew of the history and the foundations of classical cryptography, and then 
on to modern public-key cryptography. Particular attention is paid to cryptographic protocols an 
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problem of constructing key components of protocols such as one-way functions. A function Is o 
If It is easy to compute, but hard to Invert. We discuss the notion of one-way functions both ... 

Keywords: Complexity theory, interactive proof systems, one-way functions, public-key 
cryptography, zero-knowledge protocols 



Results 1 - 20 of 200 Result page: 1 23456Z8910 next 

The ACM Portal is published by the Assodation for Computing Machinery. Copyright © 2007 ACM, Inc. 
Terms of Usage Privacy Policy Code of Ethics Contact Us 

Useful downloads: Adobe Acrobat QuickTime 1^ Windows Media Player ^ Real Player 



http://portal.acm.org/results.cfm?coll=ACM&dl=ACM«&CFID= 1471211 0&CFTOKEN=3 ... 3/27/2007 



